Privacy Policy
DentalTours (dental clinic located at 79 Ardealului St., 1st floor, Timișoara) respects the privacy of its visitors and processes personal data in accordance with Regulation (EU) 2016/679 (GDPR). This policy explains what data we collect through this website, for what purpose and what rights you have.
Who is the controller
The data controller is DentalTours, located at 79 Ardealului St., 1st floor, Timișoara, 300154. For any question regarding your data, write to us at contact@dentaltours.ro or call +40 356 448 670.
What data we collect
- Data you provide directly when you contact us (by phone, WhatsApp or email): name, phone number, email address and the content of your message.
- Automatically collected data: IP address, browser and device type, pages visited and the date/time of access — recorded in server logs for security and the proper functioning of the site.
- Virtual assistant (AI chat): the messages you type into our automated assistant are processed to answer you, including by a third-party artificial-intelligence provider (Groq, Inc.), which may process them on servers outside the European Economic Area, with the safeguards required by GDPR. We keep chat conversations, in pseudonymised form (without directly identifying you), for a limited period, for the purpose of improving the service and internal statistics. Please do not enter sensitive medical data in the chat; for an appointment we can be reached by phone, WhatsApp or email.
- Cookies: see our Cookie Policy.
Purpose and legal basis
- To respond to your requests and arrange an appointment — based on your consent and pre-contractual steps (Art. 6(1)(a) and (b) GDPR).
- For the security, maintenance and improvement of the site — based on our legitimate interest (Art. 6(1)(f)).
- To comply with legal obligations, where applicable (Art. 6(1)(c)).
How long we keep data
The messages and contact details you send us (by phone, WhatsApp or email) are kept for as long as necessary to reply to you and for any subsequent clarifications, generally no longer than 12 months, unless you become a patient or the law requires otherwise. Technical server logs are kept for a limited period.
Who we share data with
We do not sell or rent your data. We may only disclose it to our web hosting provider (which stores it on our behalf) and, when pages load, to the Google services used on the site (Google Maps and Google Fonts). We may also disclose data to authorities when required by law.
International transfers
Some third-party services (e.g. Google) may involve transferring data outside the European Economic Area, subject to the safeguards provided by the GDPR (standard contractual clauses).
Your rights
You have the right to access, rectification, erasure, restriction, objection, portability and to withdraw your consent. Details and how to exercise them can be found on the GDPR — Your Rights page.
Complaints
If you are dissatisfied with how we process your data, please contact us first. You also have the right to lodge a complaint with the Romanian Data Protection Authority (ANSPDCP), www.dataprotection.ro.
Security
We apply reasonable technical and organisational measures to protect data against unauthorised access, loss or disclosure.
Changes
We may update this policy from time to time. The current version is the one published on this page.